- • Customer deploying to market a white-label banking- as-a-service (BaaS) solution.
- • Currently had deployed a EKS cluster with managed nodes.
- • Customer had a multi account AWS setup with separate accounts for separate environments such as dev, prod, UAT, test, etc.
- • Complex deploy a private self managed eks cluster withoutinternet access on multiple account.
- • Configure and build hardened images for deployments.
- • Implement centralised monitoring stack.
- • Multi account networking setup using transit gateway, networkfirewall and wire guard vpn.
- • Wrote a terraform scripts to setup Custom Self-managed EKS cluster with vpc endpoints to access AWS services without internet
- • Configured terraform scripts for RBAC configurations, external secrets, helm deployment of monitoring stack, transit gateway, network firewall.
- • Upgraded EKS cluster to new version as per requirement.
- • Configured hardened images for setting up EKS also images of java, python.
- • Setup multiple clusters on multiple accounts also setup external secrets for deployment of services.
- • Multi account service connectivity using transit gateway and deployed network firewall to manage access.
- • Configured a separate AWS account for centralised monitoring stack consisting of prometheus, loki, grafana, node exporter, promtail, lambda functions to push AWS logs